I have managed to integrate and configure the firewall in Sophos Central. I would like to know how can I fetch firewall logs using postman. My main goal is to integrate this feature into a SIEM application.
Essentially this is not possible from a Central perspective. The Logs in the Datalake are stored there and cannot be extracted.
But you can send Data from your firewalls directly to a SIEM.
Can you provide more details about how to send data from the firewall directly to the SIEM application?
The following document explains the configuration steps you'll need to follow to send data to a Syslog server.- Add a syslog server